| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950 |
- package middleware
- import (
- "kpt-tmr-group/pkg/apierr"
- "kpt-tmr-group/pkg/jwt"
- commonPb "kpt-tmr-group/proto/go/backend/common"
- "net/http"
- "strings"
- "github.com/gin-gonic/gin"
- )
- const (
- Authorization = "Authorization"
- ToKenPrefix = "Bearer "
- UserName = "userName"
- )
- func GetToken(c *gin.Context) string {
- value := c.Request.Header.Get(Authorization)
- if value != "" && strings.HasPrefix(value, ToKenPrefix) {
- return strings.TrimPrefix(value, ToKenPrefix)
- }
- return ""
- }
- func unauthorized(c *gin.Context) {
- c.AbortWithStatusJSON(http.StatusBadRequest, apierr.WithContext(c, commonPb.Error_UNAUTHORIZED))
- }
- // RequireAdmin ...
- func RequireAdmin() gin.HandlerFunc {
- return func(c *gin.Context) {
- token := GetToken(c)
- if token == "" {
- unauthorized(c)
- return
- }
- claims, err := jwt.ParseToken(token)
- if err != nil || claims == nil || claims.Username == "" {
- unauthorized(c)
- return
- }
- c.Set(UserName, claims.Username)
- c.Next()
- }
- }
|
